(12) INTERNATIONAL APPLICATION PUBLISHED UNDER THE PATENT COOPERATION TREATY (PCT) 



(19) Worid Intellectual Property Organization 
International Bureau 

(43) International Publication Date 
30 January 2003 (30.0L2003) 




mill 



(10) International Publication Number 

PCT WO 03/009113 Al 



(51) Intemationai Patent Classification^: 
GO6C9/00 



G06F 1/00, 



(21) IntematioDal Application Number: PCT/SE02/01367 

(22) International Filing Date: 16 July 2002 (16.07.2002) 

(25) Fillog Language: Swedish 

(26) Publication Language: English 



(30) Priority Data: 

0102558-4 



18 July 2001 (18.07.2001) SE 



(71) Applicant (for al! designated Stales except US)i DIREKT- 
GIRO AB [SE/SE]; P.O. Box 5004. S-121 05 Johanneshov 

(SE). 

(72) Inventors; and 

(75) Inventors/AppUcants Oor US only): BCNGTSSON, Bo 



ISE/SEJ; Hantverkargatan 59, S-U2 31 Stockholm (St). 
FLINK, Sareu [SE/SE]; Skjolvagen 17. S-120 48 Enskede 
(SE). 

(74) Agents: SUNDSTR6M, Peretal.; Stenhagen Patentbyra 
AB. P.OSox 4630. S-1 16 91 Stockholm (SE). 

(81) Designated States (national): AE, AG. AU AM. AT. AU. 
AZ. BA, BB, BG. BR, BY. BZ, CA, CH, CN. CO, CR, CU. 
CZ, DE, DK. DM, DZ, EC. EE, ES. R, GB. GO, GE. GH, 
GM. HR, HU, ID, XL, IN. IS, IP, KE. KG. KP, KR. KZ. LC. 
LK, LR, LS, LT, LU, LV, MA, MD, MG, MK. MN, MW, 
MX, MZ, NO, NZ, OM. PH, PL. PT. RO. RU, SD. SE, SG, 
SI. SK. SL, TJ. TM. TN. TR. TT. TZ. UA. UG, US. UZ, 
VN, YU, ZA. ZM, ZW. 

(84) Designated States (regional): ARIPO patent (GH. GM. 
KE, LS, MW, MZ, SD. SL, SZ, TZ. UG, ZM. ZW), 
Eurasian patent (AM, AZ, BY. KG. KZ, MD, RU. TJ, TM). 
European patent (AT, BE, BG, CH, CY, CZ, DE, DK, EE, 

[Continued on next page] 



(54) Title: A METHOD FOR SAFE AND FAST CONNECTION OF A FIRST COMPUTER TO A SECOND COMPUTER HAV- 
^= ING LIMITED ACCESS ABILITY 



< 
O 






(57) Abstract: A method for 
safe and fast connection of a first 
computer (Dl) to a second computer 
(D2) that has limited access ability 
involves reading into the first 
computer (Dl) a regisler-Uala. 
which is sent to a databank (DB) 
that includes a register (10) which 
includes plurality of fingerprints; 
reading into the first computer (Dl) 
a fingerprint (12) of a valid user, 
said fingerprint (12) also being sent 
to the databank (DB); carrying out 
in the databank (DB) a comparison 
between a fingerprint (1 1) included 
in said plurality of fingerprints (10) 
and corresponding to the earlier 
transmitted register-data no the 
one haixJ, and the fingerprint (12) 
earlier sent by the valid user on the 
other hand; and connecting the first 
computer to the second computer 
(D2) automatically (via 14, 15) 
when agreement is found between 
tlie two fingerprints (11, 12). 



BEST AVAILABLE COPY 



wo 03/009113 Al liiiililliliiliiiiiiilliiiilii 



ES. H, FR, GB. GR, IE. IT, LU, MC. NL, PT, SE. SK. 
TR), OAPI patent (BF, BJ, CF, CG, CI. CM, GA. GN. GQ. 
GW, ML, MR, NE, SN, TD, TG). 

Declarations under Rule 4.17: 

— as to applicant 's entitlement to apply for and be granted 

a potent (Rule 4. 17 (it)) for the following designations AE. 
AG. AL, AM. AT, AU, AZ, BA. BB. BG, BR, BY. BZ. CA. 
CH. CN. CO. CK CV. CZ. DE. DK DM. DZ, EC. EE. ES. 
n GB. GD. GE. GH. GM. HK HU. ID. IL. IN. IS. JF. KE. 
KG. KP.KR.KZ. LC, LK LK LS. LT. LU. LV.MA. MD. MG. 
MK^MN.hdW.MX, MZ, NO. NZ OM PH. RO. RU. 

50. SE. SO. SI. SK. sr., TJ, TM. TN, TR, IT, TZ. UA, UG. 
UZ, m YU, ZA. ZM, ZIV.ARIFO patent (GH. GM. KE. LS. 
MW, MZ, SD. SL, SZ TZ UG. ZM, ZW), Eurasian patent 
(AM. AZ, BY, KG. KZ MD. RU. TJ, TM). European patent 
(AT, BE, BG. CH, CY. CZ. DE, DK EE. ES. Fl FR, GB. 
GK IE. rT,LU, MC. NL, PT. SE, SK TR). OAPI patent (BF, 
BJ. CF. CG. CI. CM, GA. GN. GQ GW. ML. MR. NE. SN. 
TD, TG) 

— as to the applicant 's entitlement to claim the priority of the 
earlier application (Rule 4. 1 7 (Hi)) for the following desig- 
nations AE. AG. AL. AM. AT. AU. AZ BA. BB. BG. BR BY. 
BZ CA. CH. CN. CO. CR. CU. CZ DE. DK DM. DZ EC. 
EE. ES. Fl GB. GD. GE. GH. GM. HR, HU. ID. IL IN. 



IS JP. KE, KG. KP,KR,KZ LC. LK. LR LS. LT. LU. LV. 
MA. MD. MG. MK. MN. Ml^'. MX. MZ. NO. NZ. OM. PH. 
PL PT, RO. RU, SD, SE. SG, SI, SK SL. TJ. TM. TN. TR. 
TT. TZ UA, UG. UZ VN, YU. ZA. ZM. ZW, ARIPO patent 
(GH, GM. KE. LS. MW. MZ. SD, SL SZ, TZ UG, ZM. ZWj. 
Eurasian patent (AM. AZ BY. KG. KZ. MD. RU. TJ. TMj. 
European patent (AT. BE. BG. CH. CY. CZ. DE. DK. EE. 
ES. FL FR, GB. GR. IL IT. LU. MC. NL Pll SL SK TR). 
OAPI patent (BF. BJ. CF. CG. CI. CM. GA. GN. GQ. GW, 
ML MR. NE, SN. TD. TG) 

— of inventorship (Rule 4. 1 7(iv)) for US only 

Published: 

— with international search report 

For two-letter codes and other abbreviations, refer to the "Guid- 
ance Notes on Codes and Abbreviations" appearing at the begin- 
ning of each regular issue of the PCT Gazette, 



wo 03/009113 



PCT/SE02/01367 



A METHOD FOR SAFE AND FAST CONNECTION OF A FIRST COMPUTER 
TO A SECOND COMPUTER HAVING LIMITED ACCESS ABILITY 

TECHNICAL FIELD 

5 

The transmission or exchange of information between computers can be effected per se 
relatively quickly and simply with the aid of present-day computer technology. However, 
the demand for security, simplicity and speed increases with time. 

10 For example, a company may wish to contact a branch ofBce in another part of the world 
whilst avoiding industrial espionage; a physician who needs to read remotely situated case 
records of a patient will, naturally, do this without an unauthorised person having access to 
the records at the same time; banks desire to execute their services without danger of 
currency fraud, which are, unfortunately, ever more usual at the present time. Examples of 

15 other situations may include the desire of a salesman to register an order, or the need of a 
company accountant to check an item in someone's accounts. The use options are many, 
and computers are now being equipped with fingerprint readers as standard to an ever 
increasing extent. 

20 SUMMARY OF THE INVENTION 

The object of the present invention is to provide absolute secure control over what is 
allowed through to a computer, a database, both quickly and simply without the user 
needing to learn new codes. 

25 

The method of safe and quick connection of a first computer to a second computer having 
a limited access ability involves reading into the first computer a register-data that is sent 
to a data bank which includes a plurality of fingerprints, reading into the first computer the 
fingerprint of a valid user, this fingerprint also being smt to the databank; causmg a 
30 comparison to be made in the databank between a fingerprint included in said plurality of 
fingerprints and corresponding to the earlier sent register-data on the one hand and the 
earlier sent fingeiprint of the valid user on the other hand; and connectii^ the first 
computer automatically to the second computer when agreement is found between the two 
fingerprints. 
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DESCRIPTION OF A PREFERRED EMBODIMENT 

The invention will now be described in. more detail with reference to the accompanying 
drawing, which illustrates schematically a coupling between two computers. 

5 

It is desired to connect a computer Dl to a computer D2, which, for some reason, has a 
limited access ability. This may be because the computer D2 is intended solely for a 
physician or doctor. 

10 Register-data is read into the first computer Dl from a chip or some other electronic 
storage medimn, this data being sent, e.g., via the Internet, to a databank DB that includes a 
register 1 0 in which a plurality of fingerprints are stored. 

Fingerprints 12 belonging to a valid user (a doctor) are read into the first computer Dl and 
1 5 sent to the databank DB, via the Internet 

It may be appropriate to allow both transmissions between the first computer Dl and the 
databank DB to take place in an encrypted form. 

20 A comparison is made in a comparison circuit 13 in the databank DB between fingerprints 
1 1 included in said plurality of fingerprints 10 and corresponding to the earlier transmitted 
register-data on the one hand, and the earlier transmitted fingerprint 12 of the valid \iser 
(the doctor) on the other hand. The computer Dl and the computer D2 are coupled 
automatically vAion agreement is found between the two fingerprints 11 and 12, via points 

25 14 and 15, possibly in an encrypted form for encrypted transmission between the two 
computers. 

The connection desired is prevented from taking place when there is lack of agreement 
between the fingerprints 1 1 and the fingerprint 12. 

30 

The proposed computer coupling security routine has been found extremely easy to xise 
and to provide a positive solution to a number of security problems and is thought to have 
a future in respect of a large nimiber of practical use possibilities. 
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CLAIM 
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A method for safe and fast connection of a first computer (Dl) to a second computer (D2) 

that has limited access ability, characterised 
5 by reading into the first computer (Dl) a register-data, which is sent to a databank (DB) 

that includes a register (10) which includes plurahty of fingerprints; 

reading into the first computer (Dl) a fingerprint (12) of a valid user, said fingerprint (12) 

also being sent to the databank (DB); carrying out in the databank (DB) a comparison 

between a fingerprint (1 1) included in said plurality of fingerprints (10) and corresponding 
10 to the earlier transmitted register-data on the one hand, and the fingerprint (12) earlier sent 

by the valid user on the other hand; and 

connecting the first computer to the second computer (D2) automatically (via 14, 15) when 
agreement is found between the two fingerprints (1 1, 12). 
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